CVE advisoryKnown Exploit
CVE-2020-12812
FortiOS SSL VPN Authentication Bypass Risk.
Halo Surface Signal: 5 out of 5 — more likely to be public-facing.
An improper authentication vulnerability in FortiOS SSL VPN allows users to bypass multi-factor authentication by altering username case, potentially leading to unauthorized access and data compromise. This affects organizations using the affected SSL VPN components and presents a significant business risk.